CompTIA CASP+ (CAS-003) — Question 276

A secure facility has a server room that currently is controlled by a simple lock and key, and several administrators have copies of the key. To maintain regulatory compliance, a second lock, which is controlled by an application on the administrators' smartphones, is purchased and installed. The application has various authentication methods that can be used. The criteria for choosing the most appropriate method are:
✑ It cannot be invasive to the end user.
✑ It must be utilized as a second factor.
✑ Information sharing must be avoided.
✑ It must have a low false acceptance rate.
Which of the following BEST meets the criteria?

Answer options

• A. Facial recognition
• B. Swipe pattern
• C. Fingerprint scanning
• D. Complex passcode
• E. Token card

Correct answer: C

Explanation

Fingerprint scanning is the best option because it is non-invasive, serves as a reliable second factor, prevents information sharing, and has a low false acceptance rate compared to other methods. Facial recognition can be intrusive, swipe patterns may not be as secure, complex passcodes can be forgotten or shared, and token cards may not be as user-friendly.